DHCP: FreeBSD bootpd Stack Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the bootpd utility.Successful exploitation can result in remote code execution or denial of service conditions.
Extended Description
In FreeBSD before 11.2-STABLE(r348229), 11.2-RELEASE-p7, 12.0-STABLE(r342228), and 12.0-RELEASE-p1, insufficient validation of network-provided data in bootpd may make it possible for a malicious attacker to craft a bootp packet which could cause a stack buffer overflow. It is possible that the buffer overflow could lead to a Denial of Service or remote code execution.
Affected Products
Freebsd freebsd
References
BugTraq: 106292
CVE: CVE-2018-17161
URL: https://www.freebsd.org/security/advisories/freebsd-sa-18:15.bootpd.asc
Short Name
DHCP:RQST:CVE-2018-17161-BO
Severity
Major
Recommended
True
Recommended Action
Drop
Category
DHCP
Keywords
Buffer CVE-2018-17161 FreeBSD Overflow Stack bid:106292 bootpd
Release Date
02/25/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
False Positive
Unknown
Vendors
Freebsd
CVSS Score
7.5